ModSecurity

: Hosting Glossary; Disk Space; Hepsia Control Panel; Domains Hosted; InnoDB; Integrated Ticketing System; Email Accounts; Memcached; Node.js; Subdomains; Support; Bandwidth; Varnish; VPN Traffic; Assisted Website Migration; Weekly Backup; Sign Up

ModSecurity is an efficient firewall for Apache web servers that is used to prevent attacks toward web apps. It keeps track of the HTTP traffic to a certain Internet site in real time and blocks any intrusion attempts the instant it detects them. The firewall uses a set of rules to accomplish that - as an example, attempting to log in to a script administration area without success several times triggers one rule, sending a request to execute a certain file which could result in gaining access to the site triggers a different rule, and so on. ModSecurity is among the best firewalls available and it will protect even scripts that aren't updated frequently since it can prevent attackers from employing known exploits and security holes. Quite thorough info about each intrusion attempt is recorded and the logs the firewall keeps are a lot more detailed than the standard logs generated by the Apache server, so you could later take a look at them and determine whether you need to take additional measures in order to increase the security of your script-driven sites.

ModSecurity in Cloud Web Hosting

ModSecurity is available with every cloud web hosting plan that we offer and it's turned on by default for any domain or subdomain that you include through your Hepsia CP. In case it interferes with any of your programs or you would like to disable it for any reason, you shall be able to do this through the ModSecurity section of Hepsia with only a click. You may also enable a passive mode, so the firewall will discover potential attacks and maintain a log, but will not take any action. You can see extensive logs in the very same section, including the IP address where the attack came from, what exactly the attacker tried to do and at what time, what ModSecurity did, and so forth. For max protection of our customers we use a set of commercial firewall rules combined with custom ones that are included by our system administrators.

ModSecurity in Semi-dedicated Hosting

ModSecurity is a part of our semi-dedicated hosting packages and if you choose to host your sites with us, there shall not be anything special you will have to do since the firewall is switched on by default for all domains and subdomains that you include using your hosting CP. If required, you can disable ModSecurity for a certain site or activate the so-called detection mode in which case the firewall will still function and record data, but shall not do anything to prevent potential attacks against your websites. In depth logs shall be accessible inside your CP and you shall be able to see what sort of attacks took place, what security rules were triggered and how the firewall addressed the threats, what IP addresses the attacks originated from, and so on. We employ 2 sorts of rules on our servers - commercial ones from a business that operates in the field of web security, and custom ones which our admins sometimes add to respond to newly found threats promptly.

ModSecurity in VPS

ModSecurity is pre-installed on all virtual private servers which are provided with the Hepsia hosting CP, so your web programs shall be secured from the second your server is in a position. The firewall is switched on by default for any domain or subdomain on the VPS, but if necessary, you could disable it with a click of your mouse via the corresponding section of Hepsia. You could also set it to work in detection mode, so it shall maintain an extensive log of any possible attacks without taking any action to prevent them. The logs can be found in the same section and offer information about the nature of the attack, what IP address it came from and what ModSecurity rule was activated to stop it. For optimum security, we use not just commercial rules from a business working in the field of web security, but also custom ones which our admins include personally so as to respond to new threats that are still not dealt with in the commercial rules.

ModSecurity in Dedicated Hosting

All our dedicated servers which are installed with the Hepsia hosting Control Panel come with ModSecurity, so any application that you upload or install will be secured from the very beginning and you won't have to bother about common attacks or vulnerabilities. An independent section inside Hepsia will permit you to start or stop the firewall for any domain or subdomain, or turn on a detection mode so that it records details about intrusions, but does not take actions to stop them. What you shall discover in the logs can easily allow you to to secure your Internet sites better - the IP an attack originated from, what website was attacked and exactly how, what ModSecurity rule was triggered, and so on. With this information, you could see if a site needs an update, whether you ought to block IPs from accessing your hosting server, etc. Besides the third-party commercial security rules for ModSecurity that we use, our admins add custom ones too if they discover a new threat that's not yet a part of the commercial bundle.